Security Alerts and Updates

  Latest Security Updates for Apple Software
•  AV Mac Security Test and Review 2020
•  AV Real-World Protection Test Feb-Mar 2020
•  AV Malware Protection Test March 2020
•  AV Performance Test April 2020
•  AV Mobile Security Review 2020

July, 2020  (Click listings for more information) .
14  Microsoft fixes Win10 issue causing reboots, LSASS crashes.
14  Chrome 84 released with important security enhancements.
14  Win10 2004 servicing stack update fixes privilege escalation bug.
14  Microsoft July Patch Tuesday: 123 vulnerabilities, 18 Critical!
14  Win10 cumulative updates KB4565503 & KB4565483 released.
14  Wattpad data breach exposes account info for millions of users.
14  Adobe fixes critical bugs in Creative Cloud, Media Encoder.
14  Android chat app uses public code to spy, exposes user data.
13  LiveAuctioneers reports data breach of 3.4 million user records.
13  It’s Patch Tuesday time – by Woody Leonhard.
12  This Week in Security – by Zack Whittaker.
12  Use Windows 10’s Storage Sense to free up Disk Space.
11  Zoom fixes zero-day RCE bug affecting Windows 7.
11  TrickBot malware mistakenly warns infected victims.
11  How to enable Windows 10’s hidden features using Mach2.
11  The Win10 version 2004 upgrade blocks just keep comin’.
10  Magstripe versions created from EMV & contactless cards.
10  The Week in Ransomware – A quiet week.
10  Protect your Verizon number from SIM swapping attacks.
10  Backdoor accounts discovered in 29 FTTH devices.
09  New Google Ads policy will ban stalkerware ads.
09  Zoom working on patching zero-day in Windows client.
09  Office 365 phishing uses fake Zoom suspension alerts.
09  Joker malware keeps evading Google Play Store defenses.
09  Pre-installed malware found in budget US smartphones.
08  Microsoft warns of Office 365 phishing via OAuth apps.
08  NVIDIA fixes code execution bug in GeForce Experience.
08  Most bugs in Microsoft’s June patches have been fixed.
08  Microsoft fixes Word, Skype hangs in Office updates.
08  15 billion credentials currently for sale on hacker forums.
07  ThiefQuest info-stealing Mac wiper gets free decryptor.
07  Mozilla suspends Firefox Send service to address abuse.
07  ‘Keeper’ hacking group behind hacks at 570 online stores.
07  Cerberus banking Trojan infiltrates Google Play.
06  Android Users Hit with ‘Undeletable’ Adware.
06  Purple Fox EK Adds Microsoft Exploits to Arsenal.
06  Win10 version 2004 upgrade block: What needs your attention.
06  Home routers warning: They’re riddled with known flaws.
06  North Korean hackers linked to credit card stealing attacks.
05  This Week in Security – by Zack Whittaker.
05  Windows 10’s Microsoft Store Codecs patches are confusing.
04  New extension warns of website port scans, local attacks.
04  E-Verify’s “SSN Lock” is Nothing of the Sort.
04  Companies are reporting ransomware attacks as data breaches.
04  The OneDrive connectivity bug isn’t just in Win10 version 2004.
03  The Week in Ransomware – Yes, Macs need antivirus.
03  Apple macOS Big Sur feature to hamper adware operations.
03  Windows 10 2004 breaks OneDrive connectivity for some users.
02  AdwCleaner can now be used from the command line.
02  16 Facebook apps caught secretly sharing data with 3rd parties.
02  Workaround for Win10 version 2004 Storage Spaces issue.
01  Windows malware uses DNS to smuggle stolen credit cards.
01  Emergency Firefox update rolled out to fix search issues.
01  Android FakeSpy malware spreads via SMS phishing.
01  Microsoft lifts Win10 2004 update block on Surface devices.

June, 2020  (Click listings for more information) .
30  EvilQuest wiper uses ransomware cover to steal files from Macs.
30  OOB security updates released for Windows 10 RCE bugs.
30  Microsoft releases PowerToys 0.19 with a whole lot of fixes.
30  Firefox 78 adds WebRender support to PCs with Intel GPU.
30  25 Android apps caught stealing Facebook credentials removed.
29  Seller floods hacker forum with data stolen from 14 companies.
29  Hackers are wiping Lenovo NAS devices & asking for ransoms.
29  Roblox accounts being hacked in support of Trump reelection.
29  A Wi-Fi extender for the home has unpatched vulnerabilities.
29  100k+ daily brute-force attacks on RDP in pandemic lockdown.
28  John Opdenakker’s Weekly Security Newsletter.
28  Apple, Google, & Mozilla reduce lifespan of HTTPS certificates.
28  This Week in Security – by Zack Whittaker.
28  Is Microsoft Edge stealing Chrome & Firefox users’ data?
27  Microsoft created a Windows 10 File Recovery tool, how to use.
27  This Registry trick lets you block major Windows 10 updates.
27  Almost 300 Win10 executables vulnerable to DLL hijacking.
27  Adobe, Mastercard, Visa warn store owners of Magento 1.x EOL.
26  Nvidia released security updates for their GPU display driver.
26  The Week in Ransomware – Scrounging around networks.
26  Microsoft is permanently closing almost all of its retail stores.
26  TikTok to stop clipboard snooping after Apple exposes behavior.
26  Google Phone gets Verified Calls showing why a business is calling.
26  75%+ of all vulnerabilities reside in indirect dependencies.
25  Hackers hide credit card stealing scripts in favicon EXIF data.
25  Apple adds support for encrypted DNS (DoH and DoT).
25  Golang worm widens scope to Windows, adds payload capacity.
25  Microsoft removed the defer feature update setting in Win10.
25  Comcast becomes the first ISP to join Mozilla’s TRR program.
25  Office 365 users phished by ‘Coronavirus Employee Training’.
25  List of Ripple20 vulnerability advisories, patches, and updates.
24  NVIDIA patches high severity flaws in Windows, Linux drivers.
24  AdBlock is causing YouTube video errors in Microsoft Edge.
24  Google will auto delete activity history for new Google accounts.
24  Microsoft acknowledges Win10 bug causing forced reboots.
23  Win10 June updates cause forced reboots, LSASS crashes.
23  Win10 May Update is breaking OneDrive Files On-Demand for some users.
23  ‘Safe Documents’ reaches general availability in Office 365.
22  Office 365 now checks docs for known threats before editing.
22  Microsoft: June updates break Outlook for some users.
22  Google Assistant’s connection issues with Android Auto fixed.
22  BitDefender fixes bug that allowed remote commands.
22  Hackers use Google Analytics to steal credit cards.
22  Outlook bug linked to a bad Windows cumulative update.
22  Files from hundreds of police departments exposed.
22  John Opdenakker’s Weekly Security Newsletter.
21  Malwarebytes performance issues in Windows 10 2004.
21  This Week in Security – by Zack Whittaker.
21  Ransomware operators lurk on your network after attack.
21  How to use Reset this PC to reinstall Windows 10.
20  Patch Lady – Issue with Outlook.
20  Google Chrome experiment warns of bad extensions.
20  Discord modified to steal accounts by NitroHack malware.
20  Adobe wants users to uninstall Flash Player by year-end.
20  AMD says it will fix new CPU bugs by the end of June.
19  The Week in Ransomware – a Quiet Week.
19  Turn on MFA Before Crooks Do It For You.
19  Microsoft is pushing out Edge browser to Windows 7 & 8.1.
19  Microsoft Defender ATP detects Windows 10 UEFI malware.
19  Out-of-band security update for Windows 10 version 1903.
19  Microsoft Surface Go 2 receives June firmware update.
Hackers use fake Windows error logs to hide attacks.
18  Google Yanks 106 ‘Malicious’ Chrome Extensions.
18  Print spooler issue for Windows 10 May 2020 Update fixed.
18  Wells Fargo phishing baits customers with calendar invites.
18  Windows 10 version 2004 hits a Storage Spaces brick wall.
18  Bank of America phishing email bypasses spam filters.
18  Vulnerability identified in 79 Netgear router models.
17  Win10 1809 users are being updated to Windows 10 2004.
17  Shlayer Mac malware returns with extra sneakiness.
17  Windows 10 Fresh Start feature moved into Reset this PC.
17  Windows 10 2004 may break Storage Spaces.
16  VLC Media Player 3.0.11 fixes remote code execution flaw.
16  Windows 10 out-of-band updates to fix printing issues.
16  Adobe fixes critical flaws in Illustrator, After Effects, more.
16  ‘Ripple20’ bugs impact millions of connected devices.
16  Google Releases Security Updates for Chrome.
16  Edge & Chrome bugs in Windows 10 version 2004.
15  US bank customers targeted in ongoing Qbot campaign.
15  GTP protocol vulnerabilities will impact future 5G networks.
15  Every major cell carrier in the U.S. is having service outages.
15  Microsoft acknowledges printing issues with Windows 10.
15  Windows 10 2004 breaks Fresh Start, how to still use it.
15  Microsoft investigating Edge self-launch on Windows startup.
15  Win10 May 2020 Update makes Google Chrome forgetful.
15  Accessories giant Claire’s hacked to steal credit card info.
14  This Week in Security – by Zack Whittaker.
14 is phishing users of
14  Windows 10 Defragger bug defrags SSD drives too often.
14  Microsoft breaks Fresh start on Win10 May 2020 Update.
13  This app will tell you if your iPhone has been hacked.
13  Avast fixes bug blocking programs from starting in Win10.
13  Win10 Privacy Settings bug lets users change admin options.
13  The Win10 version 2004 bugs keep rolling in.
12  The Week in Ransomware – Slithering into networks.
12  D-Link leaves severe security bugs in home router unpatched.
12  Recent Windows 10 updates block programs from running.
12  Win10 printing breaks due to Microsoft June 2020 updates.
12  Stalkerware detection rates improving in antivirus products.
11  Fortune 500 insurance firm Genworth discloses data breach.
11  Microsoft Outlook users targeted by Gamaredon’s VBA macro.
11  Patch Lady – printing issues with PCL 5 drivers.
10  Fake Black Lives Matter campaign spreads Trickbot malware.
10  Expiring SSL certs expected to break smart TVs, fridges, & IoTs.
10  Microsoft Office security updates fix critical RCE bugs.
10  FBI – Increased hacking risk if using mobile banking apps.
10  Win10 May 2020 Update causing issues for ThinkPad laptops.
10  Win10 SMBv3 flaw can be used for data theft, RCE attacks.
10  Some Win10 PCs are being auto-upgraded to version 2004.
10  Skimmer steals credit cards of Greenworks customers.
09  Group Policy flaw lets attackers gain admin privileges.
09  Windows Update for Surface Pro 7 & Surface Laptop 3 fixed.
09  Windows 10 bug breaks USB printer port on restart.
09  Microsoft June Patch Tuesday: largest ever with 129 fixes.
09  Intel patched 22 vulnerabilities in the June Platform Update.
09  Patch Tuesday: Here’s what’s new for Windows 7 and 8.1.
09  Win10 cumulative updates KB4557957 & KB4560960 released.
09  SGAxe attack steals protected data from Intel SGX enclaves.
09  Adobe fixes critical remote code execution bug in Flash Player.
09  Valak malware gets plugin to steal Outlook login credentials.
09  Older Surface devices get driver and firmware updates.
08  UPnP bug allows data theft, DDoS attacks, LAN scans.
08  Woody Leonard: Patch Tuesday is nigh, pause updates now.
08  Ransomware launches in massive smiley spam campaign.
08  Win10 2004: external displays go black when drawing in Word.
08  Google’s indexing of WhatsApp numbers raises concerns.
07  John Opdenakker’s Weekly Security Newsletter.
07  This Week in Security – by Zack Whittaker.
07  How to uninstall Cortana on Windows 10 May 2020 Update.
07  uBlock Origin now blocks port scans on most sites.
07  Use the Windows 10 Health Dashboard to track known issues.
06  Fake ransomware decryptor double-encrypts victims’ files.
06  How to free up space after Windows 10 May 2020 Update.
06  The Week in Ransomware – Threat actors team up.
06  Fix Optane Memory pinning error on Win10 May 2020 Update.
05  Apple publishes free resources to improve password security.
05  Driver and firmware updates for the Surface Studio and Pro X.
05  Windows 10 SMBGhost bug gets proof-of-concept RCE exploit.
05  QNAP NAS devices targeted in ransomware attacks.
05  Kupidon is the latest ransomware targeting your data.
04  Windows 10 May 2020 Update breaks Intel Optane Memory.
04  Microsoft releases PowerToys 0.18.2 with more fixes.
04  Google Releases Security Updates for Chrome.
04  Fix syncing Outlook calendar with iCloud calendar after 2004.
04  Incognito mode detection still not fixed in Chrome.
03  Firefox 77.0.1 released to prevent DDoSing DoH DNS providers.
03  Google has updated its support for security keys on iOS.
03  Office 365 phishing remote workers with fake VPN configs.
03  TrickBot adds BazarBackdoor to malware arsenal.
03  Microsoft Edge released to Windows 10 via Windows Update.
02  You can still upgrade to Windows 10 for free, here’s how.
02  Microsoft fixes Outlook crashes in June Office 2020 updates.
02  Cold boot attack affects 7 years of LG Android smartphones.
02  Two Critical Android Bugs Open Door to RCE.
02  Apple pushes fix to ALL devices for “unc0ver” jailbreak flaw.
02  Google Search bug prevents new content from being indexed.
02  Firefox 77 rolls out WebRender to more Windows 10 laptops.
01  Google brings the Advanced Protection Program to Nest.
01  Apple releases iOS 13.5.1 & watchOS 6.2.6 with security fixes.
01  Web Browsers still allow drive-by-downloads in 2020.
01  Get your May Windows and Office patches installed.

May, 2020  (Click listings for more information) .
31  This Week in Security – by Zack Whittaker.
31  Here are the new security features in Windows 10 2004.
31  Office 365 to give detailed info on malicious email attachments.
31  Users told if their Windows 10 is not ready for May 2020 Update.
30  Windows 10’s Winget Package Manager gets front ends.
30  How to install or uninstall Cortana on Win10 May 2020 Update.
30  List of well-known web sites that port scan their visitors.
30  Amtrak resets user passwords after Guest Rewards breach.
29  The Week in Ransomware – Quiet before the storm?
29  Woody on Windows – by Woody Leonhard.
29  Fix the ‘Cortana is not available’ error on Win10 version 2004.
29  Windows 10 2004 may be blocked due to old graphics drivers.
29  Microsoft mitigates Windows 10 2004 issue impacting DISM.
28  Features being deprecated or removed in Win10 version 2004.
28  Win10 May 2020 Update blocked on PCs with Memory Integrity.
28  Minted discloses data breach after user records sold online.
28  Google launches website to help detect and stop scams.
27  Windows 10 2004 comes with Wi-Fi 6 and WPA3 support.
27  Windows 10’s Pktmon sniffer gets real-time monitoring.
27  The Windows 10 May 2020 Update has many known issues.
27  26 USB bugs in Linux, Windows, macOS, and FreeBSD.
27  Windows 10 version 2004, the May 2020 Update, is here.
27  Apple releases security updates for multiple products.
26  26 million LiveJournal credentials leaked online.
26  Arbonne MLM data breach exposes user personal info.
26  Critical Android bug lets malicious apps hide in plain sight.
26  How to block Windows 10, version 2004, from installing.
25  HP releases fix for issue causing BSOD for certain PCs.
25  Apple serves dozens of repeat app updates on the App Store.
25  70% of mobile, desktop apps contain open-source bugs.
25  John Opdenakker’s Weekly Security Newsletter.
24  This Week in Security – by Zack Whittaker.
24  eBay scans visitors’ computers for remote access programs.
24  OMG! – FIVE new Windows zero-days published.
24  Discord client turned into a password stealer by malware.
24  New jailbreak released, works on all recent iOS versions.
22  Windows 10 update breaks wireless LTE connectivity.
22  Microsoft Edge update is rolling out in a phased manner.
22  The Week in Ransomware – Constantly Innovating.
22  Microsoft is investigating issues in Windows 10 update.
22  Microsoft PowerToys gets updated with bug fixes.
22  Mathway investigates data breach after 25M records sold.
22  Banking malware is deployed in over 100 campaigns.
21  Office 365 phishing uses Supreme Court theme.
21  Crooks tap Google Firebase in fresh phishing tactic.
21  0patch posts a patch for the “PrintDemon” security hole.
20  Hacker selling 40 million user records from Wishbone app.
20  Ransomware leaks patient data from Fresenius Medical Care.
20  Apple releases iOS 13.5 with Exposure Notification API.
20  Adobe releases critical out-of-band security update.
20  KB 4497165: Another Intel microcode update.
19  Microsoft warns of phishing attack pushing legit RAT.
19  Windows 10 KB4556799 update won’t install, has bugs.
19  EasyJet hacked: data breach affects 9 million customers.
19  Google rolls out new Enhanced Safe Browsing feature.
19  Chrome 83 released with security and privacy upgrades.
19  Phishing attack hacks Microsoft Office 365 credentials.
18  Smartphones, laptops, IoT devices open to BIAS attack.
18  Fake U.S. Dept of Treasury emails spreads malware.
18  Edison Mail iOS bug exposed emails to strangers.
18  Windows 10 Defender’s hidden features revealed.
17  John Opdenakker’s Weekly Security Newsletter.
17  This Week in Security – by Zack Whittaker.
16  The Week in Ransomware – REvil targets Trump.
16  Win10 quietly got a built-in network sniffer, how to use.
15  New BotSight browser extension reveals Twitter bots.
15  Galaxy S20 secure chip protects against hardware attacks.
15  This unusual Trojan promises victims COVID-19 tax relief.
15  How scammers abuse Google Search’s open redirect feature.
14  TikTok violated children’s privacy law, FTC complaint says.
14  550 million user records being sold on hacking forum.
14  Android malware has been stealing data since 2016.
14  NewsGuard becomes free for all Microsoft Edge users.
13  PrintDemon vulnerability impacts all Windows versions.
13  Fix for Outlook search failures coming later today.
13  COVID-19 phishing spreading info-stealing malware.
13  It’s time to squirrel away a clean copy of Win10 version 1909.
12  813 creepware apps removed from the Android Play Store.
12  Here’s what’s new for Windows 7 and 8.1 this month.
12  Patch Tuesday: Microsoft fixes 111 vulnerabilities, 13 critical.
12  Win10 Cumulative Updates KB4556799 & KB4551853 released.
12  Adobe fixes vulnerabilities in Acrobat, Reader, and DNG SDK.
12  1,236 websites found infected with credit card stealers.
11  Sphinx Malware Returns to Riddle U.S. Targets.
11  Thunderbolt flaw allows a hacker to access a PC’s data.
11  Pause Windows Updates – by Woody Leonhard.
10  John Opdenakker’s Weekly Security Newsletter.
10  This Week in Security – by Zack Whittaker.
10  Patch Lady – KB4538483 revised.
10  Limiting the bandwidth used by Windows 10 Update.
10  ChatBooks discloses data breach after data sold on dark web.
10  Sodinokibi ransomware can now encrypt open & locked files.
09  Hackers flood dark web with data stolen from 11 companies.
09  Microsoft Edge is getting a new feature to reduce web spam.
08  Microsoft offers free repair of Surface Laptop 3 screens.
08  Reports that this month’s Outlook update knocks out Search.
08  The Week in Ransomware – Attacks Continue.
08  Windows 10 upgrade bug prevents HDR video streaming.
08  Microsoft rolls out protection against Office 365 email storms.
08  New Google Authenticator makes it worth using again.
08  Windows 10’s Game Mode causing freezes, FPS issues.
08  Firefox 76.0.1 released to fix Amazon extension, crashes.
08  Surface Pro 4 gets firmware & driver updates, better stability.
08  Unemployment benefits letter prompts ID theft worries.
07  150 million people are using passwordless logins each month.
07  Intel graphics drivers now support Windows 10 2004.
07  Tech Support Scam Uses Child Porn Warning.
07  Microsoft Teams call drops on desktop caused by iOS bug.
07  Zoom beefs up end-to-end encryption to stop ‘Zoombombers’.
07  How to use 2FA to improve your online security.
07  It’s time to install the April Windows and Office patches.
06  Lazarus Group hides macOS spyware in 2FA application.
06  Samsung patches vulnerability impacting most smartphones.
06  Hackers use website favicon to hide credit card skimmer.
06  Citrix ShareFile bugs could give access to private files.
06  Zoom accounts will receive security features on May 9.
06  Intel Graphics driver is Windows 10 May 2020 Update ready.
05  Cyber volunteers release blocklists for COVID-19 threats.
05  Microsoft releases Office updates with fixes for auth issues.
05  Firefox 76 released with integrated data breach alerts.
05  The AskWoody FREE Newsletter 17.17.F is out.
05  Nest devices will require 2-factor authentication this month.
05  May security patch rolling out for Google Pixel devices.
04  Google Drive adds biometric protection on iPhone & iPad.
04  Microsoft Teams impersonation attacks flood inboxes.
04  CAM4 adult cam site exposes 11 million emails, private chats.
04  Hackers target remote workers with fake Zoom downloader.
04  Xiaomi browser update allows turning off data collection.
04  Configure updates and reboot options for Windows 10.
03  John Opdenakker’s Weekly Security Newsletter.
03  This Week in Security – by Zack Whittaker.
03  Debloating Windows 10 & increasing privacy with SharpApp.
01  The Week in Ransomware – Banishing the Shade.
01  FCC: No more warnings for robocallers before fines.
01  Office 365 phishing uses fake Microsoft Teams alerts.
01  Microsoft releases new firmware updates for Surface Pro X.
01  SaveDotOrg campaign succeeds as ICANN rejects .ORG sale.
01  Xiaomi smartphones are tracking usage habits & browsing data.